sprawdzenie loga
Proszę o pomoc w odczytaniu mojego loga. Czy zawiera jakieś zapisy wskazujące na zagroźenia ?
Logfile of HijackThis v1.99.0
Scan saved at 02:56:57, on 2005–01–27
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAheadInCDInCDsrv.exe
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesSymantec SharedccProxy.exe
C:Program FilesNorton SystemWorksNorton Antivirus avapsvc.exe
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:PROGRA~1NORTON~1NORTON~2NPROTECT.EXE
C:Program FilesAheadInCDInCD.exe
C:Program FilesDU MeterDUMeter.exe
C:Program FilescFosSpeedcFosSpeed.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesNorton SystemWorksNorton AntivirusSAVScan.exe
C:PROGRA~1NORTON~1NORTON~2SPEEDD~1NOPDB.EXE
C:Program FilesCommon FilesSymantec SharedSecurity CenterSymWSC.exe
C:WINDOWSsystem32wscntfy.exe
C:Program FilesMaxthonMaxthon.exe
C:Wykrywanie wirusów w komputerzeHijackThis v1.99 – wykrywa wirusy.exe
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:Program FilesAdobeAcrobat 6.0 CEReaderActiveXAcroIEHelper.dll
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – C:PROGRA~1SPYBOT~1SDHelper.dll
O2 – BHO: CNisExtBho Class – {9ECB9560–04F9–4bbc–943D–298DDF1699E1} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll
O2 – BHO: CNavExtBho Class – {BDF3E430–B101–42AD–A544–FADC6B084872} – C:Program FilesNorton SystemWorksNorton AntivirusNavShExt.dll
O2 – BHO: (no name) – {FFFFFEF0–5B30–21D4–945D–000000000000} – C:PROGRA~1STARDO~1SDIEInt.dll
O3 – Toolbar: Web assistant – {0B53EAC3–8D69–4b9e–9B19–A37C9A5676A7} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll
O3 – Toolbar: Norton AntiVirus – {42CDD1BF–3FFB–4238–8AD1–7859DF00B1D6} – C:Program FilesNorton SystemWorksNorton AntivirusNavShExt.dll
O4 – HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 – HKLM..Run: [InCD] C:Program FilesAheadInCDInCD.exe
O4 – HKLM..Run: [DU Meter] C:Program FilesDU MeterDUMeter.exe
O4 – HKLM..Run: [cFosSpeed] C:Program FilescFosSpeedcFosSpeed.exe
O4 – HKCU..Run: [supelek bogiego] c:program filessupelek bogiegosupb.exe –spr
O4 – HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O6 – HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 – Extra context menu item: &Add animation to IncrediMail Style Box – C:PROGRA~1INCRED~1in esourcesWebMenuImg.htm
O8 – Extra context menu item: Download with Star Downloader – C:Program FilesStar Downloadersdie.htm
O8 – Extra context menu item: E&ksport do programu Microsoft Excel – res://C:PROGRA~1MICROS~3Office10EXCEL.EXE/3000
O9 – Extra button: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll
O9 – Extra 'Tools' menuitem: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll
O9 – Extra button: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll (HKCU)
O9 – Extra 'Tools' menuitem: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll (HKCU)
O16 – DPF: {37A49D66–2735–4BB9–8503–82BA5E2333D0} (MailCfg Control) – http://poczta.wp.pl/autoryzacja/mailcfg.ocx
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1098430337591
O16 – DPF: {A7196C8E–35A5–4FF0–9E46–E28918B5CAF6} (GameDesire Domino) – http://67.15.101.3/g_bin/pl/domino_2_0_0_22.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C1} (GameDesire Pool 8) – http://67.15.101.3/g_bin/pl/billard8_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C3} (GameDesire Pool 14) – http://67.15.101.3/g_bin/pl/billard14_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C4} (GameDesire Pool Training) – http://67.15.101.3/g_bin/pl/billardt_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C5} (GameDesire Snooker) – http://67.15.101.3/g_bin/pl/snooker_2_0_0_21.cab
O17 – HKLMSystemCCSServicesTcpip..{0064959B–79B7–4E8D–ABF0–773D200B1D62}: NameServer = 194.204.152.34 217.98.63.164
O17 – HKLMSystemCS1ServicesTcpip..{0064959B–79B7–4E8D–ABF0–773D200B1D62}: NameServer = 194.204.152.34 217.98.63.164
O23 – Service: Symantec Event Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 – Service: Symantec Network Proxy – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccProxy.exe
O23 – Service: Symantec Password Validation – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe
O23 – Service: Symantec Settings Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 – Service: InCD Helper – Ahead Software AG – C:Program FilesAheadInCDInCDsrv.exe
O23 – Service: Usługa Auto Protect programu Norton AntiVirus – Symantec Corporation – C:Program FilesNorton SystemWorksNorton Antivirus avapsvc.exe
O23 – Service: Norton Unerase Protection – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~2NPROTECT.EXE
O23 – Service: SAVScan – Symantec Corporation – C:Program FilesNorton SystemWorksNorton AntivirusSAVScan.exe
O23 – Service: ScriptBlocking Service – Symantec Corporation – C:PROGRA~1COMMON~1SYMANT~1SCRIPT~1SBServ.exe
O23 – Service: Symantec Network Drivers Service – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
O23 – Service: Speed Disk service – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~2SPEEDD~1NOPDB.EXE
O23 – Service: SymWMI Service – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedSecurity CenterSymWSC.exe
z góry dziękuję :lol:
Logfile of HijackThis v1.99.0
Scan saved at 02:56:57, on 2005–01–27
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAheadInCDInCDsrv.exe
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesSymantec SharedccProxy.exe
C:Program FilesNorton SystemWorksNorton Antivirus avapsvc.exe
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:PROGRA~1NORTON~1NORTON~2NPROTECT.EXE
C:Program FilesAheadInCDInCD.exe
C:Program FilesDU MeterDUMeter.exe
C:Program FilescFosSpeedcFosSpeed.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesNorton SystemWorksNorton AntivirusSAVScan.exe
C:PROGRA~1NORTON~1NORTON~2SPEEDD~1NOPDB.EXE
C:Program FilesCommon FilesSymantec SharedSecurity CenterSymWSC.exe
C:WINDOWSsystem32wscntfy.exe
C:Program FilesMaxthonMaxthon.exe
C:Wykrywanie wirusów w komputerzeHijackThis v1.99 – wykrywa wirusy.exe
O2 – BHO: AcroIEHlprObj Class – {06849E9F–C8D7–4D59–B87D–784B7D6BE0B3} – C:Program FilesAdobeAcrobat 6.0 CEReaderActiveXAcroIEHelper.dll
O2 – BHO: (no name) – {53707962–6F74–2D53–2644–206D7942484F} – C:PROGRA~1SPYBOT~1SDHelper.dll
O2 – BHO: CNisExtBho Class – {9ECB9560–04F9–4bbc–943D–298DDF1699E1} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll
O2 – BHO: CNavExtBho Class – {BDF3E430–B101–42AD–A544–FADC6B084872} – C:Program FilesNorton SystemWorksNorton AntivirusNavShExt.dll
O2 – BHO: (no name) – {FFFFFEF0–5B30–21D4–945D–000000000000} – C:PROGRA~1STARDO~1SDIEInt.dll
O3 – Toolbar: Web assistant – {0B53EAC3–8D69–4b9e–9B19–A37C9A5676A7} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll
O3 – Toolbar: Norton AntiVirus – {42CDD1BF–3FFB–4238–8AD1–7859DF00B1D6} – C:Program FilesNorton SystemWorksNorton AntivirusNavShExt.dll
O4 – HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 – HKLM..Run: [InCD] C:Program FilesAheadInCDInCD.exe
O4 – HKLM..Run: [DU Meter] C:Program FilesDU MeterDUMeter.exe
O4 – HKLM..Run: [cFosSpeed] C:Program FilescFosSpeedcFosSpeed.exe
O4 – HKCU..Run: [supelek bogiego] c:program filessupelek bogiegosupb.exe –spr
O4 – HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O6 – HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 – Extra context menu item: &Add animation to IncrediMail Style Box – C:PROGRA~1INCRED~1in esourcesWebMenuImg.htm
O8 – Extra context menu item: Download with Star Downloader – C:Program FilesStar Downloadersdie.htm
O8 – Extra context menu item: E&ksport do programu Microsoft Excel – res://C:PROGRA~1MICROS~3Office10EXCEL.EXE/3000
O9 – Extra button: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll
O9 – Extra 'Tools' menuitem: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll
O9 – Extra button: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll (HKCU)
O9 – Extra 'Tools' menuitem: Corel Network monitor worker – {11870E1D–4343–49D7–A07E–BA3C1D498464} – C:WINDOWSSystem32intlmain.dll (HKCU)
O16 – DPF: {37A49D66–2735–4BB9–8503–82BA5E2333D0} (MailCfg Control) – http://poczta.wp.pl/autoryzacja/mailcfg.ocx
O16 – DPF: {6414512B–B978–451D–A0D8–FCFDF33E833C} (WUWebControl Class) – http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1098430337591
O16 – DPF: {A7196C8E–35A5–4FF0–9E46–E28918B5CAF6} (GameDesire Domino) – http://67.15.101.3/g_bin/pl/domino_2_0_0_22.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C1} (GameDesire Pool 8) – http://67.15.101.3/g_bin/pl/billard8_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C3} (GameDesire Pool 14) – http://67.15.101.3/g_bin/pl/billard14_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C4} (GameDesire Pool Training) – http://67.15.101.3/g_bin/pl/billardt_2_0_0_21.cab
O16 – DPF: {FDDBE2B8–6602–4AD8–946D–94C5A32FA6C5} (GameDesire Snooker) – http://67.15.101.3/g_bin/pl/snooker_2_0_0_21.cab
O17 – HKLMSystemCCSServicesTcpip..{0064959B–79B7–4E8D–ABF0–773D200B1D62}: NameServer = 194.204.152.34 217.98.63.164
O17 – HKLMSystemCS1ServicesTcpip..{0064959B–79B7–4E8D–ABF0–773D200B1D62}: NameServer = 194.204.152.34 217.98.63.164
O23 – Service: Symantec Event Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 – Service: Symantec Network Proxy – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccProxy.exe
O23 – Service: Symantec Password Validation – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccPwdSvc.exe
O23 – Service: Symantec Settings Manager – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 – Service: InCD Helper – Ahead Software AG – C:Program FilesAheadInCDInCDsrv.exe
O23 – Service: Usługa Auto Protect programu Norton AntiVirus – Symantec Corporation – C:Program FilesNorton SystemWorksNorton Antivirus avapsvc.exe
O23 – Service: Norton Unerase Protection – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~2NPROTECT.EXE
O23 – Service: SAVScan – Symantec Corporation – C:Program FilesNorton SystemWorksNorton AntivirusSAVScan.exe
O23 – Service: ScriptBlocking Service – Symantec Corporation – C:PROGRA~1COMMON~1SYMANT~1SCRIPT~1SBServ.exe
O23 – Service: Symantec Network Drivers Service – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
O23 – Service: Speed Disk service – Symantec Corporation – C:PROGRA~1NORTON~1NORTON~2SPEEDD~1NOPDB.EXE
O23 – Service: SymWMI Service – Symantec Corporation – C:Program FilesCommon FilesSymantec SharedSecurity CenterSymWSC.exe
z góry dziękuję :lol:
Odpowiedzi: 0
Strona 0 / 0